PT-2025-40398 · Phpgurukul · Phpgurukul Online Shopping Portal Project
Sanin-S1R3N
+1
·
Published
2025-10-02
·
Updated
2025-10-02
·
CVE-2025-61096
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
PHPGurukul Online Shopping Portal Project versions 2.1
Description
The software is susceptible to a SQL Injection issue. This flaw is located in the /shopping/login.php file and can be triggered through the
fullname parameter.Recommendations
Apply updates to address the issue in version 2.1.
Exploit
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Phpgurukul Online Shopping Portal Project